CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Exploit DB•added 2004/06/11 12:0 a.m.•21 views

PHP-Nuke 6.x/7.x - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/10524/info PHP-Nuke is prone to multiple vulnerabilities. The issues result from insufficient sanitization of user-supplied data. The following specific issues can affect the application: PHP-Nuke is prone to multiple cross-site scripting vulnerabilities...

Exploit DB•added 2004/06/11 12:0 a.m.•23 views

PHP-Nuke 6.x/7.x Reviews Module - 'order' SQL Injection

Exploit DB•added 2004/06/11 12:0 a.m.•26 views

PHP-Nuke 6.x/7.x Reviews Module - Multiple Cross-Site Scripting Vulnerabilities

Exploit DB•added 2004/06/11 12:0 a.m.•23 views

PHP-Nuke 6.x/7.x Encyclopedia Module - Multiple Function Cross-Site Scripting Vulnerabilities

Exploit DB•added 2004/06/11 12:0 a.m.•22 views

PHP-Nuke 6.x/7.x FAQ Module - 'categories' Cross-Site Scripting

exploitpack•added 2004/06/11 12:0 a.m.•13 views

PHP-Nuke 6.x7.x Reviews Module - Multiple Cross-Site Scripting Vulnerabilities

PHP-Nuke 6.x7.x Reviews Module - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/10524/info PHP-Nuke is prone to multiple vulnerabilities. The issues result from insufficient sanitization of user-supplied data. The following specific issues can affect the...

exploitpack•added 2004/06/11 12:0 a.m.•14 views

PHP-Nuke 6.x7.x Reviews Module - order SQL Injection

PHP-Nuke 6.x7.x Reviews Module - order SQL Injection source: https://www.securityfocus.com/bid/10524/info PHP-Nuke is prone to multiple vulnerabilities. The issues result from insufficient sanitization of user-supplied data. The following specific issues can affect the application: PHP-Nuke is...

0.9AI score

exploitpack•added 2004/06/11 12:0 a.m.•9 views

PHP-Nuke 6.x7.x Encyclopedia Module - Multiple Function Cross-Site Scripting Vulnerabilities

PHP-Nuke 6.x7.x Encyclopedia Module - Multiple Function Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/10524/info PHP-Nuke is prone to multiple vulnerabilities. The issues result from insufficient sanitization of user-supplied data. The following specific issues ca...

0.3AI score

exploitpack•added 2004/06/11 12:0 a.m.•16 views

PHP-Nuke 6.x7.x FAQ Module - categories Cross-Site Scripting

PHP-Nuke 6.x7.x FAQ Module - categories Cross-Site Scripting source: https://www.securityfocus.com/bid/10524/info PHP-Nuke is prone to multiple vulnerabilities. The issues result from insufficient sanitization of user-supplied data. The following specific issues can affect the application: PHP-Nu...

6.8AI score

exploitpack•added 2004/06/11 12:0 a.m.•13 views

PHP-Nuke 6.x7.x - Multiple Input Validation Vulnerabilities

PHP-Nuke 6.x7.x - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/10524/info PHP-Nuke is prone to multiple vulnerabilities. The issues result from insufficient sanitization of user-supplied data. The following specific issues can affect the application: PHP-Nuk...

0.3AI score

securityvulns•added 2004/06/08 12:0 a.m.•29 views

Multiple vulnerabilities PHP-Nuke

original advisory : http://bichosoft.webcindario.com/advisory-05.txt ------------------------------------------------------------------------------------------------- :.: Multiple vulnerabilities PHP-Nuke :.: PROGRAM: PHP-Nuke HOMEPAGE: http://phpnuke.org/ VERSION: 6.x, 7.2, 7.3 BUG: Multiple...

0.5AI score

securityvulns•added 2004/06/03 12:0 a.m.•33 views

[Squid 2004-betaNC-001] Inadequate Security Checking in NukeCops betaNC Bundle

=========================================================================== =========================================================================== Advisory: 2004-betaNC-001 Affected Software: Nuke Cops betaNC PHP-Nuke Bundle w/ PHPNuke 6.5 and later Affected Versions: all cvs versions Main...

0.2AI score

NVD•added 2004/06/01 4:0 a.m.•19 views

CVE-2004-2044

PHP-Nuke 7.3, and other products that use the PHP-Nuke codebase such as the Nuke Cops betaNC PHP-Nuke Bundle, OSCNukeLite 3.1, and OSC2Nuke 7x do not properly use the eregi PHP function with $SERVER'PHPSELF' to identify the calling script, which allows remote attackers to directly access scripts,...

7.5CVSS6.8AI score0.11047EPSS

Exploits1References12

Exploit DB•added 2004/06/01 12:0 a.m.•38 views

PHP-Nuke 5.x/6.x/7.x - Direct Script Access Security Bypass

source: https://www.securityfocus.com/bid/10447/info PHP-Nuke is affected by a direct script access security vulnerability. This issue is due to a failure to properly validate the location and name of the file being accessed. This issue will allow an attacker to gain access to sensitive scripts...

exploitpack•added 2004/06/01 12:0 a.m.•13 views

PHP-Nuke 5.x6.x7.x - Direct Script Access Security Bypass

PHP-Nuke 5.x6.x7.x - Direct Script Access Security Bypass source: https://www.securityfocus.com/bid/10447/info PHP-Nuke is affected by a direct script access security vulnerability. This issue is due to a failure to properly validate the location and name of the file being accessed. This issue wi...

0.1AI score

Exploit DB•added 2004/05/17 12:0 a.m.•22 views

PHP-Nuke 6.x/7.x - 'Modpath' File Inclusion

source: https://www.securityfocus.com/bid/10365/info PHP-Nuke is prone to a potential file include vulnerability. This issue could allow a remote attacker to include malicious files containing aribtrary code to be executed on a vulnerable system. This issue can be exploited via the 'modpath'...

exploitpack•added 2004/05/17 12:0 a.m.•16 views

PHP-Nuke 6.x7.x - Modpath File Inclusion

PHP-Nuke 6.x7.x - Modpath File Inclusion source: https://www.securityfocus.com/bid/10365/info PHP-Nuke is prone to a potential file include vulnerability. This issue could allow a remote attacker to include malicious files containing aribtrary code to be executed on a vulnerable system. This issu...